OneWordlistToListThemAll is a huge mix of password wordlists, proven to be pretty useful to provide some quick hits when cracking several hashes. Feel free to hit me up if any link in here no longer works.
Just filtering and mixing.
- Make sure the source wordlists are not using DOS/Windows line breaks (CR + LF). No need to look for Mac line breaks as they switched from CR to LF long time ago.
LC_ALL='C' dos2unix --force --newfile "${WORDLIST}.txt" "${WORDLIST}-unix.txt"- Get rid of passwords containing non-ascii or non-visible characters (except for the space).
LC_ALL='C' grep --text --extended-regexp '^[[:print:]]*$' "${WORDLIST}-unix.txt" > "${WORDLIST}-unix_print.txt"- Remove all passwords longer than 32 characters. As OneWordlistToListThemAll aims to provide some quick hits, it does not make much sense trying passwords that long.
LC_ALL='C' grep --text --invert-match --extended-regexp '.{33}' "${WORDLIST}-unix_print.txt" > "${WORDLIST}-unix_print_32max.txt"- Remove hash-like passwords that may remain uncracked in the source wordlists.
LC_ALL='C' grep --text --invert-match --extended-regexp '[[:xdigit:]]{32}' "${WORDLIST}-unix_print_32max.txt" > "${WORDLIST}-unix_print_32max_nohash.txt"- Sort each source wordlist and remove duplicates.
LC_ALL='C' sort --unique --output="${WORDLIST}-unix_print_32max_nohash_sort.txt" "${WORDLIST}-unix_print_32max_nohash.txt"- Generate OneWordlistToListThemAll.
cat *unix_print_32max_nohash_sort.txt > 'OneWordlistToListThemAll.tmp'
LC_ALL='C' sort --unique --output='OneWordlistToListThemAll.txt' 'OneWordlistToListThemAll.tmp'- Generate OneWordlistToListThemAll WPA-PSK, at least 8 characters per password.
LC_ALL='C' grep --text --extended-regexp '.{8}' 'OneWordlistToListThemAll.txt' > 'OneWordlistToListThemAll_WPA-PSK.txt'| name | size (post filtering) | source |
|---|---|---|
| adeptus mechanicus | 1.6 GB | .dic.7z files from adeptus-mechanicus.com |
| anti public | 9.3 GB | .7z file from weakpass.com |
| breach compilation | 3.8 GB | .gz file from weakpass.com |
| crackstation | 12.1 GB | .gz file from crackstation.net |
| cyclone | 6.2 GB | MediaFire link from cyclone's repo |
| hashes.org | 14.2 GB | .7z file from weakpass.com |
| hashkiller | 2.8 GB | .7z file from hashkiller.io |
| have i been pwned | 6.1 GB | leaks from hashes.org (HIBP V1 - V6) |
| kaonashi | 9.4 GB | MEGA link from Kaonashi's repo |
| password dna | 80.5 KB | .dict file from unix-ninja.com |
| probable-wordlists | 21 GB | .torrent file from Probable-Wordlists' repo |
| rockyou 2024 | 94.9 GB | .zip file from DragonJAR |
| weakpass | 83.3 GB | .7z file from weakpass.com |
| OneWordlistToListThemAll | 117 GB | N/A |
| OneWordlistToListThemAll WPA-PSK | 99.8 GB | N/A |
I'd like to thank the authors of the source wordlists. As stated before, this repo is just a bunch of filtering and mixing other people's work.